Privacy Policy & Cookies
1. INTRODUCTION
TISATI Ltd (the "Company", "we", "us" or "our") is committed to ensuring that your privacy is safe. This Privacy Policy sets out how we, TISATI Ltd, collect, store and use information about you when you use or interact with www.tisati.co.uk (our website) and where we otherwise obtain or collect information about you (regardless of where you visit from), register an account with us, and interact with any social media, such as Facebook or Instagram
We reserve the right to modify these Terms and Conditions periodically. This Privacy Policy shall become effective on 19th April 2024.
DATA CONTROLLER: TISATI Ltd, 124-128 City Road, London, EC1V 2NX, United Kingdom
UK Information Commissioner’s Office (ICO) Registration number: ZB503671
If you have any enquiries regarding this privacy policy or our privacy practices, kindly contact us through the following methods:
Email address: info@tisati.co.uk
Postal address: TISATI Ltd, 124-128 City Road, London, EC1V 2NX, United Kingdom
2. The data we collect about you
When you register, visit, or purchase products from our website www.tisati.co.uk, you will be required to provide information about yourself, including your name, billing details, and payment methods.
Personal data, or personal information, refers to any details concerning an individual that enable their identification. This does not include data from which the individual's identity has been eliminated (anonymous data).
DETAILS WE COLLECT:
A) Contact details:
- Name
- Address
- Phone number
- E-mail
- Company/Business Name
B) Order information:
- Name
- Billing address
- Shipping address
- Payment Confirmation
- Email Address
- Phone number
C) Shopping information:
- Items you view
- Wishlist
- Loyalty Points (if applicable)
- Refferals
- Gifts Cards
- Purchases
- Product reviews
D) Customer support information including the information you choose to include in communications with us, for example, when sending a message through the Services.
- Correspondence history (if applicable/unless these are provided anonymously)
- Chat history (if applicable/if applicable/unless these are provided anonymously)
-
Purchase History
E) Information We collect about Your Usage:
We may also automatically collect certain information about your interaction with the Services ("Usage Data"). To do this, we may use cookies, pixels and similar technologies ("Cookies"). Usage Data may include information about how you access and use our Site and your account, including device information, browser information, information about your network connection, your IP address and other information regarding your interaction with the Services.
3. WHAT DO WE DO WITH THE INFORMATION WE GATHER?
We typically utilise your personal data in accordance with legal permissions and with your given consent. All the information we collect is intended to ensure that we deliver you the highest quality services possible.
We only use your personal information for the following reasons (if and as applicable)
-
Order processing and additional requests. In the event of any issues that require rectification, we will promptly contact you. We may also enhance your shopping experience by enabling Shopify to match your account with other Shopify services that you may choose to use. In this case, Shopify will process your information as set forth in its Privacy Policy and Consumer Privacy Policy.
-
Sending you promotional and marketing materials, notifications, updates, and exclusive news. If you are an EEA resident, the legal basis for these data processing activities is our legitimate interest in selling our products, according to Art. 6 (1) (f) GDPR.
-
Addressing all communications from you, including inquiries, remarks, complaints, and technical issues. This is in our legitimate interests in order to be responsive to you, to provide effective services to you, and to maintain our business relationship with you according to Art. 6 (1) (f) GDPR.
-
We may share your information to third-party contractors to perform various functions (for further details, please refer to section 5).
-
Security and Fraud Prevention. We use your personal information to detect, investigate or take action regarding possible fraudulent, illegal or malicious activity. If you choose to use the Services and register an account, you are responsible for keeping your account credentials safe. We highly recommend that you do not share your username, password, or other access details with anyone else. If you believe your account has been compromised, please contact us immediately. If you are an EEA resident, the legal basis for these data processing activities is our legitimate interest in keeping our website secure for you and other customers, according to Art. 6 (1) (f) GDPR.
- We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
4. YOUR CONSENT
By accepting the terms of this policy, you grant the Company your explicit and voluntary consent to process any of your personal data in accordance with the term of this policy. When you provide us with personal information to complete a transaction, verify your credit card, or arrange for delivery or return of goods, we imply that you consent to our collection and use of this information solely for that specified purpose.
If we ask for your personal information for an additional purpose, such as marketing, we will either seek your explicit consent directly or offer you the option to decline/to refuse/to say no.
If you wish to withdraw your consent after opting in, you may request termination of contact for the specified purpose, restrict the disclosure of your information, or have your records deleted at any time by contacting us at info@tisati.co.uk.
Any marketing emails we send you will always contain a link to unsubscribe at the bottom.
5. HOW WE DISCLOSE PERSONAL INFORMATION
We may be obliged to disclose your personal information if required by law or in the event of a breach of our Terms of Service. However, we assure you that we will never sell your information to any third party.
Our store is hosted on Shopify Inc., which supplies us with the online e-commerce platform enabling us to offer our products and services to you. Your data is securely stored via Shopify's data storage systems, databases, and the general Shopify application. All information is safeguarded behind a firewall on a secure server.
We require that all third-party entities uphold the security of your personal data and handle it in compliance with legal requirements. Our third-party service providers are prohibited from utilising your personal data for their own purposes; they are authorised solely to process your personal data for specified objectives, strictly adhering to our directives.
Please be reminded that certain providers might be based in, or have facilities located in, a different jurisdiction to either yourself or us. Therefore, if you decide to carry out a transaction involving the services of a third-party provider, your information may consequently fall under the jurisdictional laws where that service provider or its facilities are situated.
We share your Personal Information with service providers to help us provide our services and fulfil our contracts with you, as described above. For example:
- Shopify: Hosting, System administration & Order Processing, Payment Providers
Shopify policy - https://www.shopify.com/legal/privacy) - Klaviyo : Management of mailing lists and analysis assists us in distributing marketing emails efficiently.
Klaviyo policy - https://www.klaviyo.com/privacy -
Facebook: Provide analytical and advertising services
Facebook policy - https://www.facebook.com/full_data_use_policy/
You can opt out of targeted advertising by visiting: https://www.facebook.com/settings/?tab=ads
-
Google: Provide analytics and advertising services
Google policy - https://policies.google.com/privacy
You can opt out of targeted advertising by visiting:
https://adssettings.google.com/anonymous?hl=en -
Instagram: Provide analytics and advertising services
Instagram policy - (https://help.instagram.com/155833707900388)
-
Swish: Provide the wishlist feature and helps us collect data on your shopping behaviour.
Swish policy - https://swish.app/legal/privacy-policy
-
Royal Mail: provide logistical services for our order shipments.
Royal Mail policy - https://www.royalmail.com/privacy-notice
-
JudgeMe: provide comprehensive review functions and facilitates the process of requesting reviews.
JudgeMe policy - https://judge.me/privacy
-
Chatty: provides communication services, including the chat application we currently use.
Chatty policy - https://help.meetchatty.com/privacy-policy
-
Simprosys: provide a seamless integration with Google Shop Feeds
Simprosys policy - https://support.simprosys.com/faq/privacy-and-terms/
-
Customily: provides the live preview personaliser function
Customily policy - https://www.customily.com/policy/privacy
-
OrderPrinterPro: Provide invoices, receipts, and documentation for every order.
OrderPrinterPro policy - https://shopcircle.co/pages/privacy-policy
Professional advisers functioning as processors including lawyers, accountants, and insurers located within the UK. These individuals offer services in consultancy, banking, legal matters, insurance, and accounting.
HM Revenue & Customs, regulators and other authorities operating as processors or joint controllers within the United Kingdom, are obligated to report processing activities under specific circumstances.
6. THIRD PARTY WEBSITES AND LINKS
Our Site may provide links to websites or other online platforms operated by third parties. If you follow links to sites not affiliated or controlled by us, you should review their privacy and security policies and other terms and conditions. We do not guarantee and are not responsible for the privacy or security of such sites, including the accuracy, completeness, or reliability of information found on these sites. Information you provide on public or semi-public venues, including information you share on third-party social networking platforms may also be viewable by other users of the Services and/or users of those third-party platforms without limitation as to its use by us or by a third party. Our inclusion of such links does not, by itself, imply any endorsement of the content on such platforms or of their owners or operators, except as disclosed on the Services.
7. AGE OF CONSENT
The Services are not intended to be used by children, and we do not knowingly collect any personal information about children. If you are the parent or guardian of a child who has provided us with their personal information, you may contact us using the contact details set out below to request that it be deleted.
As of the Effective Date of this Privacy Policy, we do not have actual knowledge that we “share” or “sell” (as those terms are defined in applicable law) personal information of individuals under 16 years of age.
8. SECURITY & RETENTION OF YOUR INFORMATION
Please be aware that no security measures are perfect or impenetrable, and we cannot guarantee “perfect security.” In addition, any information you send to us may not be secure while in transit. We recommend that you do not use insecure channels to communicate sensitive or confidential information to us. We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
How long we retain your personal information depends on different factors, such as whether we need the information to maintain your account, to provide the Services, comply with legal obligations, resolve disputes or enforce other applicable contracts and policies.
This includes satisfying any legal, regulatory, tax, accounting, or reporting obligations. In circumstances such as a complaint or if litigation is reasonably anticipated in relation to our dealings with you, we may retain your personal data for an extended period.
9. COOKIES
Like many websites, we use Cookies on our Site. For specific information about the Cookies that we use related to powering our store with Shopify, see https://www.shopify.com/legal/cookies.
A cookie file is typically stored on your device, enabling our website along with our third-party partners to identify you and understand your preferences. This facilitates a more personalised browsing experience for you.
Please see our cookie policy for further details.
10. YOUR LEGAL RIGHTS
Depending on where you live, you may have some or all of the rights listed below in relation to your personal information. However, these rights are not absolute, may apply only in certain circumstances and, in certain cases, we may decline your request as permitted by law.
- The right to request a copy of your personal data
-
The right to correct any wrong or incomplete personal data we've got on you. Just head over to the "My Account" section of our website to update your profile. If you want to deactivate your account or change any info that can't be modified online, send us an email at info@tisati.co.uk.
- Right to erase your personal data
- Right to request a Restriction of Processing your personal data:
- Right to wihdraw consent
- Complain
You may exercise any of these rights where indicated on our Site or by contacting us using the contact details provided below.
We will not discriminate against you for exercising any of these rights. We may need to collect information from you to verify your identity, such as your email address or account information, before providing a substantive response to the request. In accordance with applicable laws, you may designate an authorized agent to make requests on your behalf to exercise your rights. Before accepting such a request from an agent, we will require that the agent provide proof you have authorized them to act on your behalf, and we may need you to verify your identity directly with us. We will respond to your request in a timely manner as required under applicable law.
You don't have to pay anything to access your personal data or use any of the other rights. But, if your request is obviously groundless, repeated, or over-the-top, we might charge a fair fee. In such cases, we could also decide not to process your request.
Time limit to respond : We aim to get back to all legitimate requests within a month. Sometimes, it might take a bit longer if your request is quite complex or you've made several requests. If that's the case, we'll let you know and keep you in the loop.
11. Complaints
If you have complaints about how we process your personal information, please contact us using the contact details provided below. If you are not satisfied with our response to your complaint, depending on where you live you may have the right to appeal our decision by contacting us using the contact details set out below, or lodge your complaint with your local data protection authority. For the EEA, you can find a list of the responsible data protection supervisory authorities here.
12. International Users
Please note that we may transfer, store and process your personal information outside the country you live in. Your personal information is also processed by staff and third party service providers and partners in these countries.
If we transfer your personal information out of Europe, we will rely on recognized transfer mechanisms like the European Commission's Standard Contractual Clauses, or any equivalent contracts issued by the relevant competent authority of the UK, as relevant, unless the data transfer is to a country that has been determined to provide an adequate level of protection.
13.Contact, Questions and Complaints
If you have any questions about our privacy practices or this Privacy Policy, or if you would like to exercise any of the rights available to you, please call or email us at info@tisati.co.uk or contact us at 124 City Road, LONDON, ENG, EC1V 2NX, United Kingdom.
If you ever want to make a complaint about data protection, it'd be great if you could let us know first so we can try to sort it out for you. But if you'd prefer, you can always contact the relevant authority. In the UK, that's the Information Commissioner's Office (ICO) at www.ico.org.uk.